Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: Sy5yVvhivQWZC3RK4BOkcdO9O7z2MHSaBAgzuhWtw2g=
Subject key identifier: 2F:DD:15:8D:E7:2F:7A:3F:F4:6F:6A:7C:ED:81:17:AC:A3:14:5D:91
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 0197586DCA0BC1D798CD8D7A800B039FE82E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 04A5
Signing time: Tue 10 Jun 2025 06:01:19 +0000
Manifest this update: Tue 10 Jun 2025 06:01:19 +0000
Manifest next update: Wed 11 Jun 2025 06:01:19 +0000
Files and hashes: 1: 6bGSQZyXICWLbBfHBORwDUVmEgs.roa (hash: 1jQZKU6KRpYxffMVHliAkA59/J/hUE4iGAwCvJDdSlw=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: qZFWvPA6sc0CHzmjYciEJ4Kd8yRjPEXirwFH7PmEgwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 06:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:6d:ca:0b:c1:d7:98:cd:8d:7a:80:0b:03:9f:e8:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Jun 10 06:01:19 2025 GMT
Not After : Jun 11 06:01:19 2025 GMT
Subject: CN=2fdd158de72f7a3ff46f6a7ced8117aca3145d91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:46:67:5e:42:b1:85:9e:81:81:10:e9:cc:50:
98:61:38:a3:02:bf:e5:6b:f1:f2:37:09:42:ec:07:
87:27:61:54:7d:a7:d8:ae:0d:2b:af:74:d7:42:d7:
87:3a:2f:a3:f7:9d:9f:63:55:40:3b:67:08:df:72:
5b:aa:ca:58:b4:36:8c:89:51:9b:db:be:87:5e:81:
f8:23:2b:e2:78:7a:29:ac:aa:f1:17:71:29:74:c2:
b9:c7:d7:99:da:4c:9e:41:ed:35:df:3b:90:5e:98:
bd:53:00:1a:51:fe:b9:b4:ea:b2:d9:ce:0a:d6:7f:
25:7a:1c:8d:5a:bd:5b:50:57:3a:c0:fe:a4:ea:a2:
08:16:2a:21:10:71:f3:17:3e:9f:49:e9:c5:0d:42:
a9:64:8d:e7:7d:67:f5:ce:7b:c7:06:22:aa:b2:1f:
a5:78:25:93:98:28:7f:a8:3e:a4:80:ea:29:25:4c:
1e:89:eb:7d:0d:e0:82:6c:65:c0:e7:4e:fd:57:b6:
41:e2:f6:fb:4f:98:fa:f6:37:72:d6:c1:30:d4:66:
d1:bc:10:72:df:d6:2b:7d:3e:e8:36:15:1d:50:b6:
a6:c2:5c:9f:d0:d4:c0:d7:16:ce:3e:83:d8:4c:3f:
83:90:37:55:8a:cf:b5:62:ba:7b:fc:5a:04:eb:11:
65:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:DD:15:8D:E7:2F:7A:3F:F4:6F:6A:7C:ED:81:17:AC:A3:14:5D:91
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:d7:7b:6b:28:7b:89:30:57:6d:c4:2c:2d:20:36:ea:9c:27:
9d:93:5d:94:d4:d1:9b:fd:19:29:3e:20:a2:95:b5:bc:94:31:
a5:e8:0a:d6:dd:ff:84:5e:20:c0:47:55:9a:a6:9b:f0:32:3e:
d6:e6:b4:34:e3:52:76:3a:4b:a4:01:47:ab:a0:b6:0c:04:e7:
70:ad:e1:16:f4:9a:2a:d1:54:3c:b1:0b:f5:13:7a:5a:fd:04:
b0:70:ce:a1:56:02:4f:df:74:23:a7:b0:53:cd:7a:20:74:d6:
37:73:65:20:b2:90:d4:84:1e:63:24:2d:7a:5e:54:98:a0:8f:
c2:8a:2a:35:6e:78:81:bf:1c:8a:2b:14:f2:28:b3:e0:15:15:
3e:f6:a4:9c:61:34:a6:49:94:15:72:14:80:d1:72:f2:d7:73:
ba:a3:e5:c4:f3:89:fd:79:42:2c:8c:0f:9d:7f:c4:7b:79:c9:
4d:40:87:37:65:e3:49:a5:37:27:0c:6f:68:1f:20:1f:b2:f2:
f8:ef:68:3b:9e:c6:7f:25:09:6c:99:c9:dd:f8:19:c2:ac:47:
b2:db:9f:6d:72:16:e7:a4:66:16:33:4d:d9:39:9c:2b:a8:07:
f4:52:24:ae:9a:e1:29:65:3c:49:73:21:3e:77:3d:cb:28:f5:
aa:22:ba:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 13:49:10 2025 by rpki-client